Browse CVEs
145,537 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-8886 | Incorrect Permission Assignment for Critical Resource, Ex... | Medium | 6.7 | Low Risk | Unpatched (71d) | 10-Oct-25 |
| CVE-2025-21065 | Improper input validation in Retail Mode prior to version... | Medium | 6.6 | Low Risk | Patched | 10-Oct-25 |
| CVE-2025-52632 | A Missing Secure Attribute in Encrypted Session (SSL) Coo... | Medium | 6.5 | Low Risk | Unpatched (71d) | 10-Oct-25 |
| CVE-2025-60868 | The Alt Redirect 1.6.3 addon for Statamic fails to consis... | Medium | 6.5 | Low Risk | Unpatched (71d) | 10-Oct-25 |
| CVE-2025-61152 | python-jose thru 3.3.0 allows JWT tokens with 'alg=none' ... | Medium | 6.5 | Low Risk | Unpatched (71d) | 10-Oct-25 |
| CVE-2025-60268 | An arbitrary file upload vulnerability exists in JeeWMS 2... | Medium | 6.5 | Low Risk | Unpatched (71d) | 10-Oct-25 |
| CVE-2025-60838 | An arbitrary file upload vulnerability in MCMS v6.0.1 all... | Medium | 6.5 | Low Risk | Unpatched (71d) | 10-Oct-25 |
| CVE-2025-61925 | Astro is a web framework. Prior to version 5.14.2, Astro ... | Medium | 6.5 | Medium Risk | Patched | 10-Oct-25 |
| CVE-2025-61911 | python-ldap is a lightweight directory access protocol (L... | Medium | 6.5 | Medium Risk | Patched | 10-Oct-25 |
| CVE-2025-9549 | Facets Browsing Vulnerability | Medium | 6.5 | Low Risk | Patched | 10-Oct-25 |